/nixpkgs

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

matrix-synapse: 0.33.9 -> 0.34.0.1 (CVE-2019-5885) [18.09 backport] #53775

Closed
wants to merge 1,146 commits into
base: release-18.09
from

Conversation

Reviewers

@zimbatm zimbatm

@zimbatm zimbatm

@ryantm ryantm

@ryantm ryantm

@peti peti

@peti peti

@ttuegel ttuegel

@ttuegel ttuegel

@basvandijk basvandijk

@basvandijk basvandijk

@Ericson2314 Ericson2314

@Ericson2314 Ericson2314

@edolstra edolstra

@edolstra edolstra

@nbp nbp

@nbp nbp

@FRidh FRidh

@FRidh FRidh

Assignees
No one assigned
Labels
10.rebuild-darwin: 0 10.rebuild-linux: 1-10 2.status: merge conflict 6.topic: emacs 6.topic: fetch 6.topic: gnome3 6.topic: golang 6.topic: haskell 6.topic: nixos 6.topic: printing 6.topic: python 6.topic: qt/kde 6.topic: ruby 6.topic: rust 6.topic: stdenv 6.topic: steam 6.topic: vim 6.topic: xfce 8.has: changelog 8.has: documentation 8.has: module (update)
Projects
None yet
Milestone
No milestone
@pacien
Copy link
Contributor

pacien commented Jan 10, 2019

Motivation for this change

Backport of #53772

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Assured whether relevant documentation is up to date
  • Fits CONTRIBUTING.md.

LnL7 and others added some commits Sep 12, 2018

@LnL7
ethsign: mark broken on darwin 
Could be caused by our older 10.10.5 CoreFoundation.

    go/src/github.com/ethereum/go-ethereum/vendor/github.com/rjeczalik/notify/watcher_fsevents_cgo.go:51:216:
    cannot use nil as type _Ctype_CFAllocatorRef in argument to func literal
    go/src/github.com/ethereum/go-ethereum/vendor/github.com/rjeczalik/notify/watcher_fsevents_cgo.go:162:47:
    cannot use nil as type _Ctype_CFAllocatorRef in argument to
    _Cfunc_CFStringCreateWithCStringNoCopy
    go/src/github.com/ethereum/go-ethereum/vendor/github.com/rjeczalik/notify/watcher_fsevents_cgo.go:163:225:
    cannot use nil as type _Ctype_CFAllocatorRef in argument to func literal

/cc ZHF #45961
Verified
This commit was signed with a verified signature.
@LnL7 LnL7 Daiderd Jordan
GPG key ID: D02435D05B810C96 Learn about signing commits
e7ecf59
@joachifm
electrum: 3.1.3 -> 3.2.3
Verified
This commit was signed with a verified signature.
@joachifm joachifm Joachim F.
GPG key ID: 5C204DF675C90294 Learn about signing commits
1e379f2
@zimbatm
vault: 0.10.4 -> 0.11.1 
changelog: https://github.com/hashicorp/vault/blob/v0.11.1/CHANGELOG.md
Loading status checks…
7880cd6
@LnL7
Merge pull request #46551 from knedlsepp/fix-scs-on-darwin 
scs: Fix darwin build
Verified
This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
09c6755
@Mic92
Merge pull request #46560 from worldofpeace/eolie/0.9.36 
eolie: 0.9.35 -> 0.9.36
Verified
This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
ca2395f
@r-ryantm @xeji
worker: 3.15.1 -> 3.15.2 (#46155) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
worker
c3c4270
@r-ryantm @xeji
tinyproxy: 1.8.4 -> 1.10.0 (#46171) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
tinyproxy
a2d959c
@r-ryantm @xeji
uftp: 4.9.7 -> 4.9.8 (#46175) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
uftp
cdf162e
@r-ryantm @xeji
star: 2.6.0c -> 2.6.1a (#46176) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
star
c4e8db3
@r-ryantm @xeji
snd: 18.6 -> 18.7 (#46184) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
snd
626dac3
@r-ryantm @xeji
radarr: 0.2.0.995 -> 0.2.0.1120 (#46185) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
radarr
1b5744a
@r-ryantm @xeji
sec: 2.7.12 -> 2.8.0 (#46199) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
sec
0837ff1
@r-ryantm @xeji
rosegarden: 17.12.1 -> 18.06 (#46188) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
rosegarden
124c658
@r-ryantm @xeji
miniupnpc_2: 2.0.20180203 -> 2.1 (#46250) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
miniupnpc
69504d4
@r-ryantm @xeji
tilix: 1.8.3 -> 1.8.5 (#46180) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
tilix
d8b1223
@r-ryantm @xeji
lynis: 2.6.7 -> 2.6.8 (#46247) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
lynis
14e7afd
@r-ryantm @xeji
lockfileProgs: 0.1.17 -> 0.1.18 (#46248) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
lockfile-progs
dd43e1d
@r-ryantm @xeji
inboxer: 1.1.2 -> 1.1.4 (#46262) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
inboxer
654a0bd
@r-ryantm @xeji
mercurialFull: 4.7 -> 4.7.1 (#46243) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
mercurial-full
e077fc1
@r-ryantm @xeji
hebcal: 4.13 -> 4.14 (#46269) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
hebcal
6563305
@r-ryantm @xeji
gromacs: 2018.2 -> 2018.3 (#46275) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
gromacs
e94947a
@r-ryantm @xeji
gitAndTools.git-imerge: 1.0.0 -> 1.1.0 (#46281) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/git-imerge/versions
7f40c3a
@LnL7
Merge pull request #46580 from zimbatm/vault-0.11.1 
vault: 0.10.4 -> 0.11.1
Verified
This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
6e90c2e
@r-ryantm @xeji
focuswriter: 1.6.15 -> 1.6.16 (#46286) 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/focuswriter/versions
64ab031
@markuskowa
libfakeXinerama: add license
Verified
This commit was signed with a verified signature.
@markuskowa markuskowa
GPG key ID: D865C8A91D7025EB Learn about signing commits
7d6c70b
@markuskowa
xpra: add license
Verified
This commit was signed with a verified signature.
@markuskowa markuskowa
GPG key ID: D865C8A91D7025EB Learn about signing commits
0052a75
@markuskowa
x2vnc: add licenses
Verified
This commit was signed with a verified signature.
@markuskowa markuskowa
GPG key ID: D865C8A91D7025EB Learn about signing commits
f24a78f
@markuskowa
x11vnc: add license
Verified
This commit was signed with a verified signature.
@markuskowa markuskowa
GPG key ID: D865C8A91D7025EB Learn about signing commits
72305e7
@markuskowa
virtualgl[Lib]: fix license
Verified
This commit was signed with a verified signature.
@markuskowa markuskowa
GPG key ID: D865C8A91D7025EB Learn about signing commits
239a0ea
@markuskowa
dex: add license
Verified
This commit was signed with a verified signature.
@markuskowa markuskowa
GPG key ID: D865C8A91D7025EB Learn about signing commits
4d933fb

@pacien pacien requested review from nbp , peti , ryantm , ttuegel and zimbatm as code owners Jan 10, 2019

@pacien

This comment has been minimized.

Sign in to view
Copy link
Contributor Author

pacien commented Jan 10, 2019

Oops messed up with the backport.

@pacien pacien closed this Jan 10, 2019

@pacien pacien deleted the pacien:patch-4 branch Jan 10, 2019

@pacien

This comment has been minimized.

Sign in to view
Copy link
Contributor Author

pacien commented Jan 10, 2019

This was already backported anyway.

@GrahamcOfBorg GrahamcOfBorg added 10.rebuild-darwin: 0 10.rebuild-linux: 1-10 6.topic: emacs 6.topic: fetch 6.topic: gnome3 6.topic: golang 6.topic: haskell 6.topic: nixos 6.topic: printing 6.topic: python 6.topic: qt/kde 6.topic: ruby 6.topic: rust 6.topic: stdenv 6.topic: steam 6.topic: vim 6.topic: xfce 8.has: changelog 8.has: documentation 8.has: module (update) 2.status: merge conflict labels Jan 10, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment